Trade Secrets and NDAs in India: What Actually Works

India does not have a Trade Secrets Act. There is no statute named after them, no registry to file them, no certificate to wave at a defaulter. Trade-secret protection in India runs entirely on contract law, equitable doctrines and a steady line of High Court rulings going back decades. That is good news and bad news. Good news: anything that can be reduced to writing and signed is enforceable. Bad news: most Indian NDAs being passed around are templates that fail at the first cross-examination.

This guide covers what counts as a trade secret in India, what the courts protect, what the typical NDA gets wrong, and the contract stack that actually holds together when a key employee or vendor leaves.

What India actually protects

The leading test, repeated across multiple High Court decisions, comes from the line of cases including American Express Bank v. Priya Puri and several decisions of the Delhi and Bombay High Courts. To qualify as a trade secret in India, the information must be:

• Not publicly known — neither in the industry generally nor on the internet
• Of commercial value because it is not public
• Subject to reasonable steps by the owner to keep it secret

Customer lists, formulae, supplier terms, source code, internal pricing models, manufacturing know-how, training methodologies and unpublished R&D are the typical categories. A general principle of doing business is not protectable. Information freely shared with employees who never signed an NDA is not protectable. Information published in a brochure is not protectable.

The Indian court does not protect what the Indian company did not protect first.

The legal basis for enforcement

Three sources of legal protection work in parallel:

• Contract — the Indian Contract Act, 1872 enforces confidentiality, non-solicitation and reasonable post-employment restrictions. Section 27 voids agreements in restraint of trade, but courts read it narrowly for genuine confidentiality clauses that protect specific trade secrets rather than restrain general competition.
• Equity — the breach-of-confidence doctrine, inherited from English equity and recognised by Indian courts, provides injunctive relief even where the contract is silent or imperfect.
• Criminal law — Section 408 of the Bharatiya Nyaya Sanhita, 2023 (criminal breach of trust by clerk or servant) and Section 318 (cheating) can apply where an employee misappropriates confidential information dishonestly. The IT Act, 2000 Section 72 covers unauthorised disclosure of electronic data accessed in the course of employment.

What a defensible NDA actually contains

The typical Indian NDA that travels by email is two pages, written in templated American English, and almost always missing the four clauses that make it enforceable in an Indian court.

1. Definition of confidential information that is specific enough. “Any business information” is not specific enough. A real definition lists categories: customer lists, source code, pricing models, vendor terms, unpublished designs, internal training materials. The court reads the definition narrowly; vague drafting cuts the scope.
2. Identifiable steps the disclosing party takes to keep it secret. Marking documents “Confidential”, restricting access, recording who received what. Courts ask whether the owner treated the information as a secret. If not, there is no secret to protect.
3. A reasonable duration after termination. Indefinite NDAs are routinely read down. Two to five years post-termination is the safe range for most trade secrets, longer only for genuinely strategic or technical information.
4. Specific remedies, including injunction. Indian courts grant injunctions in breach-of-confidence cases — but only when the contract specifically contemplates them. Without an injunction clause, the disclosing party is restricted to damages, and damages for misuse of confidential information are notoriously hard to quantify.

The non-compete trap

Section 27 of the Indian Contract Act voids agreements that restrain a person from exercising a lawful profession. The Supreme Court’s reading is narrow: post-employment non-compete clauses are largely unenforceable in India. A confidentiality clause that protects identifiable trade secrets is enforceable. A non-compete clause that restrains the employee from joining any competitor is not.

Practical consequence: structure post-employment protections as confidentiality plus non-solicitation (no taking clients or key employees for a defined period), not as non-compete. The first survives Section 27. The second usually does not.

What happens when an employee walks with the data

The standard pattern: a senior employee leaves to join a competitor or start a similar venture, taking customer contacts, internal pricing models or technical documentation. The first step for the former employer is an interim injunction from the appropriate High Court or commercial court. Indian courts have granted interim injunctions in this pattern repeatedly — provided the underlying NDA and confidentiality framework hold up.

Evidence matters. The employer must show: what specific information existed, that it was protected, that the ex-employee had access, and that the new venture is using it. Without contemporaneous evidence — access logs, signed receipts, document-classification records — the matter weakens quickly. IPForte’s litigation team regularly handles these injunction matters; the win-rate is much higher when the contracts and the paper trail were set up early.

The contract stack that actually works

For a typical Indian startup or SME handling genuine trade secrets, the stack is:

• Mutual NDA with vendors, contractors, and any party receiving confidential information
• Employment agreement with built-in confidentiality, IP assignment, non-solicitation clauses
• Founder IP assignment covering everything created before incorporation
• Information-classification policy internally — what is confidential, who can access
• Exit checklist that captures returned information at termination and gets the ex-employee to sign an acknowledgement

IPForte’s contract drafting service builds this stack as a set, not as one-off documents. Each piece reinforces the others — the classification policy makes the NDA enforceable, the exit checklist creates the evidence the litigation will need.

The takeaway

India has no Trade Secrets Act, but Indian courts have built a workable protection regime out of contract, equity and criminal law. The protection only works if the owner treats the information as a secret in practice — specific definitions, access controls, written agreements, return-of-information records. The court does not invent the protection; it enforces what the owner has already built. File the contracts, classify the documents, and the court will hold the line when the breach comes.